Miggo Logo
Miggo Vulnerability Database
CVE-2018-20801

CVE-2018-20801:
Regular Expression Denial of Service in highcharts

7.5

CVSS Score
3.0

Basic Information

CVE ID
CVE-2018-20801
GHSA ID
GHSA-xmc8-cjfr-phx3
EPSS Score
0.78957%
CWE
CWE-1333
Published
3/18/2019
Updated
4/11/2023
KEV Status
No
Technology
TechnologyJavaScript

Technical Details

CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Package NameEcosystemVulnerable VersionsFirst Patched Version
highchartsnpm< 6.1.06.1.0

Vulnerability Intelligence
Miggo AIMiggo AI

Miggo AIRoot Cause Analysis

The commit diff shows removal of three backtracking-prone regex patterns (clsRegex, styleRegex, hrefRegex) from SVGRenderer.js. These regexes used .* quantifiers that could cause exponential backtracking when matching malformed attributes in SVG text elements. The vulnerability was fixed by replacing them with a manual attribute parser (parseAttribute function). The CWE-1333 classification and advisory details confirm this was an inefficient regex complexity issue in SVG text handling.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

V*rsions o* `*i*****rts` prior to *.*.* *r* vuln*r**l* to R**ul*r *xpr*ssion **ni*l o* S*rvi** (R**oS). Untrust** input m*y **us* **t*strop*i* ***ktr**kin* w*il* m*t**in* r**ul*r *xpr*ssions. T*is **n **us* t** *ppli**tion to ** unr*sponsiv* l***in*

Reasoning

T** *ommit *i** s*ows r*mov*l o* t*r** ***ktr**kin*-pron* r***x p*tt*rns (*lsR***x, styl*R***x, *r**R***x) *rom `SV*R*n**r*r.js`. T**s* r***x*s us** .* qu*nti*i*rs t**t *oul* **us* *xpon*nti*l ***ktr**kin* w**n m*t**in* m*l*orm** *ttri*ut*s in SV* t*